Lucene search

K

GoogleOSV:CVE-2017-6914

HistoryMar 15, 2017 - 4:59 p.m.

CVE-2017-6914

2017-03-1516:59:00

Google

osv.dev

4

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

29.8%

CSRF exists in BigTree CMS 4.1.18 and 4.2.16 with the id parameter to the admin/ajax/users/delete/ page. A user can be deleted.

References

github.com/bigtreecms/BigTree-CMS/files/843734/BigTree.-.Multiple.Issue.of.CSRF.that.could.Illegally.Few.Data.Changes.v02.pdf

github.com/bigtreecms/BigTree-CMS/issues/275

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

29.8%

Related for OSV:CVE-2017-6914

nvd1 cvelist1 cve1 prion1 openvas1 nessus1